SRX Services Gateway
SRX Services Gateway

same IP subnet network communication through srx300

[ Edited ]
‎06-06-2018 03:26 AM

Hi,

 

Here is  2 buildings with same IP subnet but different gateway. We need to connect SRX300 in between 2 building and exchange data between certain nodes(node IP are diffrent at both location). we can not change IP subnet at both end(all systems are in production).

 

Building A --> 172.16.0.0/21  Gateway 172.16.0.174

Building B --> 172.16.0.0/21  Gateway 172.16.0.200

All nodes are connected on respective L2 switch at respective building. We could not connect A building nodes directly on B building switch. there are different application running at both location.

Can we configure nat on srx to communicate same subnet IP or any other solution. i also want to apply security policy for source and destination IP/node.

4 REPLIES 4
SRX Services Gateway

Re: same IP subnet network communication through srx300

‎06-06-2018 03:42 AM

Hi,

Please share proposed network diagram with SRX and IP details.

 

Thanks,
Nellikka
JNCIE x3 (SEC #321; SP #2839; ENT #790)
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too!!!
SRX Services Gateway
Solution
Accepted by topic author Nik_MH
‎06-07-2018 07:47 PM

Re: same IP subnet network communication through srx300

‎06-06-2018 04:03 AM

Hello,

This is possible with SRX in L2 transparent mode

https://www.juniper.net/documentation/en_US/junos/topics/concept/security-layer2-bridging-transparen...

https://kb.juniper.net/InfoCenter/index?page=content&id=KB21421

HTH

Thx

Alex

_____________________________________________________________________

Please ask Your Juniper account team about Juniper Professional Services offerings.
Juniper PS can design, test & build the network/part of the network as per Your requirements

+++++++++++++++++++++++++++++++++++++++++++++

Accept as Solution = cool !
Accept as Solution+Kudo = You are a Star !
SRX Services Gateway

Re: same IP subnet network communication through srx300

[ Edited ]
‎06-06-2018 08:01 AM

Hi,

Please find attached network diagram. This is small setup. Customer can not go for PS.

PC from Outside zone will communicate with Inside zone PC

PC from Vendor zone will communicate with Inside zone PC

 

Please suggest

Attachments

Highlighted
SRX Services Gateway

Re: same IP subnet network communication through srx300

‎06-06-2018 07:19 PM

Hi,

As 'aarseniev' suggested, configuring SRX as a transparent firewall is the best option here.

 

Thanks,
Nellikka
JNCIE x3 (SEC #321; SP #2839; ENT #790)
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too!!!